Careem releases statement admitting to massive data leak

Share

Those who had signed up since then were not affected by the breach, she claimed in an email to Dawn.

Popular ride-hailing app Careem was hit by a cyber attack that compromised the data of 14 million users including those using the service in Pakistan. The company also didn't say what type of data was stolen, just that the data belonged to 14 million drivers ("captains") and riders. The stolen data includes the usernames, email addresses, phone number and the trip data.

According to Careem, once the company noticed the data breach it engaged with security experts and law enforcement agencies to investigate the hack and secure its systems against future hacks.

In the official statement, they have assured their commitment to protecting customer's privacy and data. Since the discovery, we've worked to understand what happened, who was affected, and what was needed to strengthen our network.

While speaking to a local newspaper, a Careem spokesperson stated that "at the time of the attack on January 14, Careem had 14 million customers worldwide and 558,000 captains on its platform".

Careem's servers are understood to be located in Dublin, Ireland. "While no organisation is completely immune to the threat of cybercrime, we are committed to meeting these threats and protecting the privacy and data of those that have placed their trust in us", the statement said.

Miami police use stun gun on man accused of touching female passenger
As a result, crew informed the passengers that they would have to deplane as officers would come aboard to arrest the Chicago man. Garcia was arrested on five charges, including battery, resisting arrest and depriving an officer of his means of protection.

When asked if the customers' credit card details and passwords were compromised, Careem responded that there was no evidence that passwords or credit card numbers were compromised.

According to the company passwords and credit card information was not affected by the hack because as per their security protocols, "your password is encrypted and your credit card details are stored on a separate system".

The company apologized to its users, saying it "has learned from this experience and will come out of it a stronger and more resilient organization". "A PCP server uses highly secure protocols and is employed by global banks around the globe to protect financial information", according to a statement.

Careem, founded in Dubai in 2012 by Mudassir Sheikha and Magnus Olsson, operates in more than 80 cities in 12 countries across the broader Middle East, including North Africa, Turkey and Pakistan.

We take the protection of our customers and captains' data very seriously. While we feel our response has been robust, we are also implementing a further programme of updates to further develop our security capabilities over coming months. "We do our best to respond to each individual, and we are actively reviewing our process to see how we can work better with this incredibly helpful community". However, the company chose not to reveal the data breach until April 23 since it wanted to conduct a proper investigation and notify people with the most accurate information. Specifically, we have introduced enhanced monitoring capabilities across our infrastructure that allows us to detect and respond quickly to security threats.

Share